Wireshark
3.2.4
Overview
Wireshark is one of the world's foremost network protocol analyzers, and is the standard in many parts of the industry. It is the continuation of a project that started in 1998. Hundreds of developers around the world have contributed to it, and it it still under active development.
Wireshark has a rich feature set which includes the following:
- Standard three-pane packet browser
- Multi-platform: Runs on Windows, Linux, OS X, Solaris, FreeBSD, NetBSD, and many others
- Multi-interface: Along with a standard GUI, Wireshark includes TShark, a text-mode analyzer which is useful for remote capture, analysis, and scripting
- The most powerful display filters in the industry
- VoIP analysis
- Live capture and offline analysis are supported
- Read/write many different capture file formats: tcpdump (libpcap), NAI's Sniffer (compressed and uncompressed), Sniffer Pro, NetXray, Sun snoop and atmsnoop, Shomiti/Finisar Surveyor, AIX's iptrace, Microsoft's Network Monitor, Novell's LANalyzer, RADCOM's WAN/LAN Analyzer, HP-UX nettl, i4btrace from the ISDN4BSD project, Cisco Secure IDS iplog, the pppd log (pppdump-format), the AG Group's/WildPacket's EtherPeek/TokenPeek/AiroPeek, Visual Networks' Visual UpTime and many others
- Capture files compressed with gzip can be decompressed on the fly
- Hundreds of protocols are supported, with more being added all the time
- Coloring rules can be applied to the packet list, which eases analysis
What's new in Wireshark
Version 3.2.4:
Bug Fixes:
- The following vulnerabilities have been fixed:wnpa-sec-2020-08 The NFS dissector could crash
- The following bugs have been fixed:SDP dissector does not parse sprop-parameter-sets field
- PVS-Studio analyser long list of issues
- Can’t have duplicate personal and global profile names
- pcapng file dissector incorrectly computes nanoseconds from timestamps because it assumes the resolution is in nanoseconds
- Read of uninitialized memory in detect_camins_file
- Read of uninitialized memory in lanalyzer_read_trace_record
- capture -> options -> select interface -> (choose) -> SEGV
- SOMEIP: SOME/IP dissector ignores the length field configuration of structs
- Packet List Pane doesn’t consume the entire pane
- Range parameter on numeric parameter in extcap plugin doesn’t work
- Export Packet Dissections not working on Windows (Wireshark 3.2.x)
- capinfos "Capture duration" output is truncated if there are more than 11 digits of seconds and fractions of a second
- MIME Files Format/pcapng: Simple Packet Block parsed incorrectly
- SOMEIP: SOME/IP-SD unique id is not unique for eventgroup types (BUG)
- Buildbot crash output: fuzz-2020-05-13-12195.pcap
Updated Protocol Support:
AoE, APRS, ASN.1 BER, DIS, DTLS, FTP, GSM SMS, H.264, IMAP, Infiniband, ISObus VT, Kafka, LSD, MAC LTE, NAS 5GS, NFS, ONC RPC, OSC, pcapng, PDCP LTE, RADIUS, RLC LTE, RTSP, SDP, SIP, Snort, SOMEIP, STUN, TLS, and UMTS FP
New and Updated Capture File Support:
Camins, Catapult DCT 2000, Lanalyzer, and MPEG
Join over 500,000 subscribers.
Subscribe for our newsletter with best Mac offers from MacUpdate.
Apps you might also like
Cocoa Packet Analyzer
Network packet protocol analyzer.
Debookee
Analyze the information being sent over your network.
Packet Peeper
Network protocol analyzer/packet sniffer.
Charles
Java HTTP proxy and monitor.
Airfoil
Send audio from any app to AirPort Express/Apple TV and more.
PacketStream
Easy way to configure/use Apple network monitoring tools.
How would you rate Wireshark app?
23 Reviews of Wireshark
Most helpful